frodotheogre Posted November 23, 2011 Author Posted November 23, 2011 finished the scan but didnt find anything.... here's the log anyways... Malwarebytes' Anti-Malware 1.51.2.1300 http://www.malwarebytes.org Database version: 8221 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 11/23/2011 3:31:06 PM mbam-log-2011-11-23 (15-31-06).txt Scan type: Full scan (C:\|) Objects scanned: 195071 Time elapsed: 1 hour(s), 7 minute(s), 37 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) Quote
Starbuck Posted November 23, 2011 Posted November 23, 2011 Hi frodotheogre The MBAM report looks encouraging, but let's look a little deeper.... just to make sure. Step 1 Download aswMBR and save it to your desktop. Double click the aswMBR.exe to run it. The latest version gives you the option of adding the latest Avast definitions: http://img.photobucket.com/albums/v708/starbuck50/new/03-07-201116-24-19.png It is recommended at this time to click NO. ( as there is a possibility of crashing the system) Click the Scan button to start scan. http://img.photobucket.com/albums/v708/starbuck50/new/asw1.gif On completion of the scan click Save log and save it to your desktop. http://img.photobucket.com/albums/v708/starbuck50/new/asw2.gif Please post this in your reply. NOTE: aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it. Step 2 Download OTL to your desktop. right click on the link and select 'Save Link/Target As'. if you have problems, try this download link: OTL Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted. When the window appears, underneath Output at the top change it to Minimal Output. Check the boxes beside LOP Check and Purity Check. . http://img.photobucket.com/albums/v708/starbuck50/new/Otllatest.png Now copy the lines in bold below. netsvcs msconfig %SYSTEMDRIVE%\*.* %systemroot%\system32\Spool\prtprocs\w32x86\*.dll %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\system32\*.exe /lockedfiles %systemroot%\System32\config\*.sav %PROGRAMFILES%\* %USERPROFILE%\..|smtmp;true;true;true /FP HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU hklm\software\clients\startmenuinternet|command /rs hklm\software\clients\startmenuinternet|command /64 /rs CREATERESTOREPOINT right click in the Custom Scans/Fixes window (under the blue bar) and choose Paste. http://img.photobucket.com/albums/v708/starbuck50/new%20forum/scan-fix.png . Click the Run Scan button. http://img.photobucket.com/albums/v708/starbuck50/runscan.png Do not change any settings unless otherwise told to do so. The scan wont take long. When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them with your next reply. In your next reply, please submit: aswMBR report Both reports from OTL Thanks. Quote Member of:UNITE
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.